dkz Posted July 23, 2014 Share Posted July 23, 2014 Okay, I have a personal website where a few IRL friends have a login for. If I want to make a function that remembered their login for like 2 weeks with the help of a cookie, So do I need to have that EU cookie/privacy disclaimer thingy? And if I have to, is it enough to get verbal consent from the friends beforehand and forego the written disclaimer on the website login form? Been reading up on the EU cookie/privacy law and can't seem to make heads or tails of it. Link to comment Share on other sites More sharing options...
Cnónna Posted July 23, 2014 Share Posted July 23, 2014 wouldn't think the EU's gona come hunting you down if your just a small private site, someone would probably need to report you to them at the very least. Right!! mind you it is the EU and they love those rules and regulations :s :argh: Link to comment Share on other sites More sharing options...
+Majesticmerc MVC Posted July 23, 2014 MVC Share Posted July 23, 2014 You do need to ask for consent for a "remember me" cookie unfortunately because it's a persistent cookie (i.e. it outlives the session). Link to comment Share on other sites More sharing options...
dkz Posted July 23, 2014 Author Share Posted July 23, 2014 okay, found this: http://www.theregister.co.uk/2012/06/14/e_privacy_directive_necessary_cookies_are_exempt/. As I read it, it should mean that the remember me function which can't be provided without a cookie and which the user has asked by checking the remember me box, is a 'strictly necessary' for the operation of the site thing, so I don't have to show the cookie disclaimer. Or maybe I'm wrong, but thanks for the answers. Link to comment Share on other sites More sharing options...
+Majesticmerc MVC Posted July 25, 2014 MVC Share Posted July 25, 2014 The key phrase is "necessary for the operation of the site". This is stuff like cookies for maintaining the content's of your shopping basket on Amazon, or a session ID stored on a website to identify you on your online banking page. A "Remember me" button isn't essential to the functioning of the site (user's can still use the site fine without the "Remember me" functionality), so you should put up the notice. However, I don't think a massive popup would be necessary just for that. A line of text next to the "[x] remember me" button just saying "(This functionality requires that a cookie be stored on your PC)" would probably satisfy as implied consent. Link to comment Share on other sites More sharing options...
Steven P. Administrators Posted July 25, 2014 Administrators Share Posted July 25, 2014 Most annoying thing about the Internet :| it's because certain websites drop tracking cookies which have nothing to do with logging in that the disclaimer is required. Link to comment Share on other sites More sharing options...
MikeChipshop Member Posted July 25, 2014 Member Share Posted July 25, 2014 Not. The law never made it to fruition and it is not required. Link to comment Share on other sites More sharing options...
HawkMan Posted July 25, 2014 Share Posted July 25, 2014 having to click away the cookie warning overlays on sites is really annoying :) Link to comment Share on other sites More sharing options...
Sparky Marky Posted July 25, 2014 Share Posted July 25, 2014 There is 'implied consent', so as long as you have a link somewhere (footer as an example) with cookie policy which links to some blurb about cookies and how they can turn them off you're covered. Link to comment Share on other sites More sharing options...
Hum Posted August 1, 2014 Share Posted August 1, 2014 Most annoying thing about the Internet :| it's because certain websites drop tracking cookies which have nothing to do with logging in that the disclaimer is required. Firefox has a setting to tell websites not to track you. Don't know if it really works. Link to comment Share on other sites More sharing options...
Recommended Posts